Cybersecurity Articles

212/68 Thursday, June 12, 2025 SAP has released its June 2025 security updates, addressing multiple vulnerabilities, including a critical flaw in SAP NetWeaver tracked as CVE-2025-42989, with a CVSS score of 9.6. This vulnerability allows authenticated attackers to bypass authorization checks and escalate privileges, posing significant risks to system integrity and availability. The flaw resides […]

211/68 Thursday, June 12, 2025 Google has patched a significant security vulnerability that could have exposed users’ recovery phone numbers. The flaw allowed malicious actors to brute-force the recovery phone number associated with a Google account using only partial information—such as the account’s display name and a few known digits of the phone number. This […]

210/68 Wednesday, June 11, 2025 Global industrial technology company Sensata Technologies has issued a data breach notification to current and former employees following a ransomware attack that occurred in April 2025. The company confirmed that unauthorized access to internal systems took place between March 28 and April 6, 2025, during which threat actors were able […]

209/68 Wednesday, June 11, 2025 OpenAI has announced that it has suspended numerous ChatGPT accounts found to be linked to state-sponsored threat actors, particularly from Russia and China. The move follows internal investigations revealing that these accounts were being used to support malicious activities worldwide—including employment scams, social engineering, and cyber espionage. According to OpenAI’s […]

208/68 Tuesday, June 10, 2025 The FBI has issued a warning about the widespread outbreak of BadBox 2.0 malware, which is reportedly infecting millions of IoT devices globally. The affected devices are primarily manufactured in China, including smart TV boxes, projectors, and infotainment systems, many of which are preloaded with malware either during manufacturing or […]

207/68 Tuesday, June 10, 2025 Cybersecurity experts are warning about a new variant of the Mirai malware that exploits a Command Injection vulnerability, tracked as CVE-2024-3721, to hijack TBK DVR-4104 and DVR-4216 digital video recorder devices, commonly used in CCTV systems. The vulnerability was disclosed by a researcher known as “netsecfish” in April 2024, along […]

206/68 Monday, June 9, 2025 Cybersecurity researchers from Cisco Talos have uncovered a new data-wiping malware called PathWiper, used in targeted attacks against Ukraine’s critical infrastructure. The malware is designed to destroy data and disrupt operations. Attackers reportedly used a legitimate endpoint administration tool to deploy the payload, indicating that they had likely obtained admin-level […]

205/68 Monday, June 9, 2025 Cybersecurity researchers are warning of a new and increasingly sophisticated phishing technique known as “ClickFix,” which is rapidly gaining traction and targeting businesses worldwide. The technique represents a significant evolution in social engineering attacks, as it lures victims into performing seemingly routine or benign tasks that ultimately lead to malware […]

204/68 Friday, June 6, 2025 Cybersecurity researchers have disclosed a critical vulnerability tracked as CVE-2025-49113 (CVSS score: 9.9) in Roundcube Webmail, a widely used open-source webmail platform that has been in operation for over 10 years. The flaw allows authenticated attackers to execute arbitrary code remotely (Remote Code Execution) and potentially take full control of […]

203/68 Friday, June 6, 2025 Ukrainian police have arrested a 35-year-old man accused of hacking into more than 5,000 user accounts from international hosting companies to illegally mine cryptocurrency using unauthorized server resources. The operation, which caused an estimated $4.5 million in damages, involved hijacking customer accounts used for website and platform hosting, installing and […]